How To Integrate ClamAV Into PureFTPd For Virus Scanning On Debian
This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on a Debian Lenny system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.
ClamAV can be installed as follows:
aptitude install clamav clamav-daemonFirst we create the file /etc/pure-ftpd/conf/CallUploadScript which simply contains the string yes:
echo "yes" > /etc/pure-ftpd/conf/CallUploadScriptNext we create the file /etc/pure-ftpd/clamav_check.sh (which will call /usr/bin/clamdscan whenever a file is uploaded through PureFTPd)
#!/bin/sh
/usr/bin/clamdscan --remove --quiet --no-summary "$1"and make it executable:
chmod 755 /etc/pure-ftpd/clamav_check.shNow we edit /etc/default/pure-ftpd-common and change the UPLOADSCRIPT line as follows:
# UPLOADSCRIPT: if this is set and the daemon is run in standalone mode,
# pure-uploadscript will also be run to spawn the program given below
# for handling uploads. see /usr/share/doc/pure-ftpd/README.gz or
# pure-uploadscript(8)
# example: UPLOADSCRIPT=/usr/local/sbin/uploadhandler.pl
UPLOADSCRIPT=/etc/pure-ftpd/clamav_check.shFinally we restart PureFTPd:
/etc/init.d/pure-ftpd-mysql restartThat’s it! Now whenever someone tries to upload malware to your server through PureFTPd, the “bad” file(s) will be silently deleted.
Test it with test malware file
Читайте також:
- debian + opera
- How To capture video from tv-tuner card via mencoder
- Конвертуємо та нарізаємо flac ape файли
- Nginx: Too Many Open Files Error
- Howto install Postfix and SASL (Debian, Ubuntu)
- Коротко про керування пакетами в Debian
- etc snapshots with git
- debian встановлення adobe flash player 10 64bit iceweasel (firefox)
- vsftpd /bin/false check_shell=NO pam hack
- Tahoe-LAFS - P2P файлова система, що дозволяє використовувати "хмару" серверів не довіряючи ним